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(54) Method, apparatus, and communication system for exchange of information in pervasive 
environments 



(57) The present invention provides a method, an 
apparatus, and a communication system tor the ex- 
change ol information in a networked pervasive environ- 
ment. Therewith an aulhenlicaied and secure session 
can be achieved. Therefor are used a first device and 
at least a remote second device. A unidirectional wire- 
less communication channel between the first device 



and the remote second device is initiated, whereby a 
sequence via the unidirectional wireless communication 
channel from the first device to the remote second de- 
vice is sent in order to furnish the remote second device 
with encryption Information. An encrypted response is 
sent via a wireless broadcast medium to the first device 
by using said encryption information lor encryption. 
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Description 
TECHNICAL FIELD 

[0001] The present invention is related to a method, 
an apparatus, and a communication system lor the ex- 
change ol information in a networked pen/asive environ- 
ment. More particularly, the invention relates to an Initial* 
scheme which allows devices participating in an authen- 
ticated and/or secure session. 

'background of the invention 

[0002] Computer were large, rare, and isolated devic- 
es that have become dramatically smaller and more 
portable. Personal computers and peripherals are small 
enough to sit on the desk at work. Smaller still are lap 
top computers and notebook computers. There are 
computer terminals which are small enough to be 
mounted in a vehicle such as a delivery truck. Still small- 
er are the hand-held terminals typically used for their 
ponabilily features where the user can carry the terminal 
in one hand and operate it with the other. A physical con- 
nection of the above devices by means of cables or fib- 
ers might have drawbacks, such as configuration con- 
straints because of the limited length of the cable, limited 
number of ports on the computer thus limiting the 
number o( peripherals that can be attached, cumber- 
some reconfiguration ol hardwired devices, etc. Note 
that there are some peripheral interface systems where 
the limited number ol ports on the computer does not 
really limit the number of peripherals. Universal Serial 
Bus (USB) and IEEE 1394 (Firewire) are examples of 
peripheral bus systems capable of supporting a large 
number of devices on a single port. Ethernet is one ex- 
ample of a communication system where the cable is 
used as a shared medium (other examples are token 
ring, FDDI (Fiber Distributed Data Interlace), and DQD8 
(Distributed Queue Dual Bus)). 
[0003] The smaller the devices get, the more impor- 
tant it becornes to replace fixed physical connections by 
wireless ad -hoc connections (e.g. body networks, radio- 
frequency connections, or infrared connections), since 
physically connecting the computer terminals, peripher- 
als, and other devices by means ol cables or fibers se- 
verely reduces the efficiency gained by making the units 
smaller. Ad-hoc connections are required where devic- 
es move around, enter an area and exit the area. The 
term ad-hoc refers to the need for frequent network re- 
organization. 

[0004] Local area communication is rapidly evolving 
into what can be called personal local area networks, 
which are networks for communication between local 
peers or subsystems. These kind of networks will herein 
be referred to as local networks. Wireless communica- 
tion is of particular importance in such local networks. 
There are different wireless communications approach- 
es known that have been developed and designed with 



an eye on the communication between peers or subsys- 
tems of such local networks. 
[0005] A typical example of a local network is the per- 
sonal area network (PAN) which grew out of work be- 

5 tween two research groups at the Massachusetts Insti- 
tute of Technology's (MIT) Media Laboratory. The natu- 
ral salinity of the human body makes it an excellent con- 
ductor of electrical current. The PAN technology takes 
advantage ol this conductivity. The PAN technokjgy us- 

10 es a liny electrical current to transmit a user's Identifica- 
tion and other information from one person to another, 
or even to a variety ol everyday objects such as cars, 
public telephones, and automated teller machines 
(ATMs), Information Is transferred via microprocessors 

IS that are placed in PAN transmitters and receivers the 
size of a thick credit card. The digital data is then sent 
or received via a liny external electric field. The small 
signal is conducted by the body's natural salinity and 
carries the information, unnoticed, through the body. 

20 The low frequency and power of the signal ensures that 
the information, which is coded to the individual, does 
not travel beyond the body and can only be received by 
something, or someone, in contact with it. The speed at 
which the information is currently transmitted is equiva- 

25 lent to a 2400-baud modem. Theoretically, 400.000 bits 
per second could be communicated using this method, 
The PAN is a typical example of an ad-hoc-body network 
which does not require any fixed cabling or the like. 
[0006] The PAN technology has potential applications 

30 In business., medical, retail, and even In personal are- 
nas. Business associates could, for example, exchange 
electronic business cards with a handshake. Corporate 
security devices could automatically log users on and 
off computer systems and subway commuters could pay 

35 for a ride by walking through a turnstile. PAN technology 
could also enable people lo carry digital versions of their 
medical files lor instant access by emergency medical 
technicians; calling card numbers could automatically 
be sent Irom a wallet to a payphone; and ATMs and au- 

^0 lomoblles would be able to immediately distinguish their 
owners as they approach. Another application area is 
with traders, requiring fast and reliable log on/off on the 
trading floor for entering purchases and sales. Even 
household devices, such as CD players, televisions and 

^5 toasters, could identify and adapt to individual prefer- 
ences and tastes using PAN technology. The PAN net- 
works are usually point-to-point where the human body 
serves as kind of a broadcast communications medium. 
[0007] GTE Corporation has developed a short-range 

so radio-frequency (RF) technique which is aimed at giving 
mobile devices such as cellular phones, pagers, and 
handheld personal computers (PCs) a smart way to In- 
teract with one another. GTE's technique is tentatively 
named Body LAN (local area network). The original de- 

55 velopment of Body LAN was via a wired vest with which 
various devices were connected (hence the name Body 
LAN), this graduated to a RF connection a couple of 
years ago. 
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[0008] Xerox Corporation has developed a handheld 
computing device called PARC TAB. The PARC TAB is 
portable yet connected to the office workstation through 
base stations which have l^nown locations. The PARC 
TAB base stations are placed around the building, and 
wired into a fixed wired network. The PARC TAB system 
uses a preset knowledge of the building layout and the 
identifiers of the various base stations to decide where 
it is by the strongest base station signal. A PARC TAB 
portable device has a wireless interface to the base sta- 
tions. The PARC TAB syslem assumes that the PARC 
TAB ponable device is always connected lo the network 
infrastructure. The location of each portable PARC TAB 
device is always known to the system software. 
[0009] The base stations establish regions and are 
connected lo power supplies. PARC TAB communica- 
tion systems have a star topology. 
[001 0] In an ailempl to standardize data communica- 
tion between disparate PC devices several companies, 
including Ericsson. IBM, Intel, Nokia, and Toshiba es- 
tablished the Bluetooth consortium to create a global 
standard lor wireless RF-based connectivity between 
fixed, portable and mobile devices. There are many oth- 
er adopter companies. The proposed standard compris- 
es an architecture and protocol specifications ranging 
from the physical layer up to the application layer. The 
technology will for instance enable solutions to automat- 
ically synchronise application information kept in mobile 
devices with the similar information kept in a fixed desk- 
top computer when users enter their offices. Enabling 
seamless voice and data transmission via wireless, 
short-range radio, the Bluetooth technology will allow 
users to connect a wide range of devices easily and 
quickly, without the need lor cables, expanding commu^ 
nicaiions capabilities for mobile computers, mobile 
phones and other mobile devices. The Bluetooth oper- 
ating environment is not yet fully defined, but there are 
expected to be similarities with the IrDA (Infrared Data 
Association) specification and the Advanced Infrared 
(Air) specification. Other aspects that probably will find 
iheir way into Bluetooth might stem from the IEEE stand- 
ard 802.11 and/or HIPERLAN. as promulgated by the 
European Telecommunications Standards Institute (ET- 
Sl). 

[001 1] Bluetooth radio technology provides a mecha- 
nism to form small private ad-hoc groupings of connect- 
ed devices away from fixed network infrastructures. 
Bluetooth makes a distinction between a master unit • 
which is a device whose clock and hopping sequence 
are used lo synchronize all olher devices - and slave 
units in the same network segment. In other words, the 
Bluetooth approach is centralized. A query-based dis- 
covery scheme is used for finding Bluetooth devices 
with an unknown address. Queries are also centralized 
at a registry sen/er. It is a drawback of such a centralized 
approach that there is a central point of failure. It is an- 
other disadvantage of such a system that more over- 
head is required than in a distributed scheme. The main 



problem of such a system is in locating a single registry 
server, and what to do if it disappears. If a random two 
devices encounter each other they must first recognize 
each other's presence, then decide which is the registry 

5 server, and then go about their business of communi- 
cating. It is this continual selection and re-seiection of a 
leader that causes the Increased overhead. The alter- 
native is to expect users to carry one device that they 
always have with them, and make it always the leader 

JO This, however, is not always a practical option. 

[0012] The Inlrared Data Association (IrDA) is an as- 
sociation of over 1 50 companies world wide focusod on 
providing infrared standards and specifications to en- 
sure the quality and interoperability of the infrared tech- 
's nology. irOA-D is the infrared data transmission stand- 
ard designed for data transfer over a distance of 1 m, 
scaleable from 115 kb/s to 4Mb/s or 16 Mb/s in the near 
future. There is a wide range of supported hardware and 
software platforms. IrDA Data defines a standard for an 

20 interoperable universal two way cordless infrared light 
transmission data port and is recommended for high 
speed short range, line-of-sight, point-to-point cordless 
data transfer. IrDA Data Protocols consist of a set of 
mandatory protocols and optional protocols. However. 

25 ihe original specifications show some drawbacks and 
restrict the data communication such that only one pair 
of devices could communicate in the same infrared 
space at one time. In a collaboration between the com- 
panies Hewlett-Packard and IBM a further specification, 

30 called the Advanced Infrared (Air), has been developed 
which will define the next generation of infrared data 
communication systems. Air is proposed for in room 
multipoint to multipoint connectivity. The distance and 
data rate are variable ranging Irom 250 kb/s over 6 m to 

35 4 Mb/s over 4 m. 11 is designed for cordless connections 
to multiple peripherals and meeting room collaboration 
applications. More details about IrDA can be found at 
the IrDA web site http://www.irda.org. 
[0013] HomeRF (based on Shared Wireless Access 

40 Protocol (SWAP) is another example of an operating en- 
vironment which can be used to connect devices. A 
HomeRF Working Group was formed to provide the 
foundation for a broad range of interoperable consumer 
devices by establishing an open industry specification 

45 (or wirefess digital communication between PCs and 
consumer electronic devices anywhere in and around 
the home. The working group, which includes the lead- 
ing companies from the personal computer, consumer 
electronics, peripherals, communications, software. 

so and semiconductor industries, is developing a specifi- 
cation for wireless communications in the home called 
the SWAP. The HomeRF SWAP syslem is designed to 
carry both voice and data traffic and to interoperate with 
the Public Switched Telephone Network (PSTN) and the 

55 imernel; it operates in the 2400 MHz band and uses a 
digital frequency hopping spread spectrum radb. The 
SWAP technology was derived from extensions of ex- 
isting cordless telephone (DECT) and wireless LAN 
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technology lo enable a new class of home cordless serv- 
ices. It supports both a lime division multiple access 
(TDMA) service lo provide delivery o( inleraclive voice 
and other time-critical services, and a carrier sense mul- 
tiple access/collision avoidance (CDMA/CA) service tor 
delivery ol high-speed-packet data. The SWAP system 
can operate either as an ad-hoc network or as a man- 
aged network under the control o( a connection point. In 
an ad-hoc network, where only data communication is 
supponed, all stations are equal and control of the net- 
work is distributed between stations. For time critical 
communications such as interactive voice, the connec- 
tion point - which provides the gateway to the PSTN • is 
required to coordinate the system. Stations use the CS- 
tvlA/CA to communicate with a connection point and oth- 
er stations. Further details about HomeRF can be found 
at the Home Radio Frequency Working Group's web site 
hltp://www.homerf.org. The SWAP specification 1.0 is 
incorporated by reference in its entirety. 
[0014] Transmitted inlormation are restricted to an in- 
tended receiver and not suitable lor everyone. For as- 
suring secure and authenticated communications cryp- 
tographic methods are help- and useful. A cryptographic 
system is a system lor sending a message from a send- 
er to a receiver over a medium so that the message is 
•secure'. That means, only the intended receiver can re- 
cover the message. The cryptographic system converts 
the message, also referred lo as plaintext, into an en- 
crypted format, known as ciphertext. The enciyption is 
accomplished by manipulating or transforming the mes- 
sage using a cipher key or keys. The receiver decrypts 
the message by converting the ciphertext back to plain- 
text. This is performed by reversing the manipulation or 
transformation process using the cipher Key or keys. 
Such an encrypted transmission is secure, so long as 
only the sender and the receiver have knowledge of the 
cipher key. Several cryptographic systems have been 
proposed in the past such as public-key cryptosystems. 
In a public-key cryplosystem, a private key is always 
linked mathematically to a public key. Known and used 
public-key cryptosystems, for example, are the Diffie- 
Hellman key agreemenl, the RSA scheme, or the EIGa- 
mal scheme. A non-malleable public-key cryplosystem 
that is provably secure against adaptive chosen chiper- 
text attack is proposed by R. Cramer and V. Shoup. 
[0015] It is an object of the present invention to pro- 
vide a scheme for the exchange of Information between 
devices in a networked pervasive environment. 
[001 6] It is another object of the present invention to 
provide a scheme for identifying communication peers. 
[00 17] It is yet another object ol the present invention 
10 present a scheme for establishing an authenticated 
communication session between at least two devices. 
[001 8] It is a further objecl of the present invention lo 
provide a scheme for a secure communication session 
between at least two devices to ensure privacy. 



SUMMARY AND ADVANTAGES OF THE INVENTION 

(001 9] The present invention relates generally to local 
networks and, more specifically, lo the set up of an au- 

5 thenticated and/or secure communication session. An 
initial-scheme is proposed that allows locally distributed 
devices to establish a session and therewith the ex- 
change of information. Such a session is used for the 
purpose of data communication between functional 

10 units or devices and with the word session are meant 
all activities which take place during the establishment, 
maintenance, and release of a connection. According to 
the invention at least two devices panicipate on a ses- 
sion in a networked pervasive computing environment. 

15 [0020] The basic idea is that a user who wants to es- 
tablish an authenticated session, that means authorized 
by the user, between a first device which is a personal 
device, e.g., a personal assistant, that the user is wear- 
ing and a second device, such as a serving device, in 

20 the user's proximity uses a directed, low-range commu- 
nication link lo initiate the communication session. 
Therefor the first device transmits encryption informa- 
tion and/or communication parameters to the target de- 
vice. The target device, i.e the second device, in turn 

25 uses the received information and parameters to estab- 
lish a wireless broadcast connection to the originating 
device, i.e. the first device. A further part of the invention 
is the implementation of a key tor guaranteeing a secure 
session and the controlling of the time-frame during 

00 which the communication between the personal and the 
sen/ing device can lake place. 
[0021] For establishing an authenticated session be- 
tween the user's personal device and the serving de- 
vice, e.g. a bank terminal, the user points with the per- 

3S sonai device to the serving device or at (east in this di- 
rection and passes via a unidirectional wireless commu- 
nication channel, e.g. via an infrared channel, a se- 
quence or an Initial-sequence that comprises a pass- 
word, a public key, a session key, identification param- 

"iO elers. and/or communication parameters. After receiv- 
ing the sequence, the serving device responds by 
sending back over a wireless broadcast medium en- 
ciypted Information which can only be decrypted and 
used by the personal device. The respond may com- 

^5 prise information, a key. also a session key. and com- 
munication parameters from the serving device for fur- 
ther communication over the wireless broadcast medi- 
um. The personal device receives the encrypted inlor- 
mation. 

50 [0022] For a secure session over the wireless broad- 
cast medium keys are exchanged. Thus, an encrypted 
communication over the wireless broadcast medium 
can lake place. 

[0023] It does not matter which device sends ihe com- 
55 munlcation parameters or the session key. 

[0024] The requirement of arranging the personal de- 
vice in the direction of the serving device nevertheless 
allows lor a very intuitive way of selecting a communi- 
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cation partner. People are accustomed to pointing to 
things from their childhooc! on. Additionally, pointing has 
the advantage of explicitly selecting a communication 
target; e g. with PAN links the user has to actually touch 
the communication target; with laser links a communi- 
cation partner can be selected visually. 
[0025] l( the two devices share the same wireless 
broadcast medium and are pari of a local network then 
the advantage occurs, that an initiated session can be 
continued oven if the user with the personal device 
changes his location by walking to other rooms or floors. 
This will be helpful if the personal device downloads 
larger files or communicates with the ser/ing device for 
a longer period of lime. As wireless broadcast medium 
can be used an infrared (IR) channel or a radio-frequen- 
cy (BF) channel, in particular an IrOA channel, a 
HomeRF channel, a Bluetooth channel, a Personal Area 
Network (PAN) channel, an acoustic channel, or any 
other channel that guarantees the user a wide range of 
action. 

[0026] For initiating the communication session and 
lof transmitting an initial-sequence that may contain 
sensitive information, the unidirectional wireless com- 
munication channel can ensure that only the target de- 
vice receives the initial-sequence. II is especially advan- 
tageous if a directed channel as lineof-sighi link can be 
used, because than no other parties can eavesdrop and 
receive the initial-sequence. Such a channel can be an 
optical channel, e.g. an infrared or a laser channel, a 
Personal Area Network (PAN) channel, a directed radio- 
frequency (RF) channel: an inductive channel, a capac- 
itive channel, or every other channel that is suitable for 
low-range, directed communication links. 
[0027] II the serving device signalizes the reception 
ol the sequence from the personal device, then the ad- 
vantage occurs, that the user gets a feedback and 
knows that the serving device is ready for further com- 
munication. This can be indicated by an optical and/or 
acoustical signal that is given by a lamp, a LED, or a 
loudspeaker. 

[0028] When the sen/ing device listens periodically for 
the sequence from the personal device, then the advan- 
tage shows up that a sent sequence can be processed 

immediately. 

[0029] It is very simple to set up a communication if 
the personal device is connected to a user. e.g. by a 
PAN, because the user touches then in an intuitive way 
the serving device for Initiating the unidirectional wire- 
less communication channel via his body. There are no 
additional cards or other things necessary for setting up 
an authenticated session . 

[0030] If the response as well as the further commu- 
nication over the wireless broadcast medium is protect- 
ed by using a cryptosystem. than the advantage occurs, 
that the exchanged Information Is hidden perfectly and 
can not be uncovered by someone else. A suitable sys- 
tem can be a public-key cryptosystem where only the 
public key is exchanged once. 



[0031] It is a further advantage of the invention that > 
in the case of a wireless unidirectional link • no direct 
contact between the personal and the sen/ing device is 
necessary. For instance cash-cards, smart-cards, or 

s any other card in the personal device or the personal 
device itself can be loaded or uploaded with information, 
e.g. e-mails, data, or amounts of money from a relative 
distance. Cards do not need to be put in devices or read 
devices which avoids read errors, makes PIN codes su- 

TO perfluousty, and helps to save time. 

[0032] A secure session starts right close to or in front 
of a serving device and can be carried on in a secure 
way at a larger distance. Sen/ing devices can be in- 
stalled everywhere these devices are useful, for in- 

'5 stance: in banks, offices, warehouses, shopping cent- 
ers, and outside of buildings, just to mention some ex- 
amples. This brings the user more independence and 
freedom of action. For instance the sen/ing device can 
be placed right near an advertisement for a concert. A 

20 ticket for this concert can be bought and paid already at 
the platform of a train station where the user is wailing 
and sees the advertisement lor the concert. The ticket 
can be electronically stored on a card or the personal 
device and can be uploaded at the entrance of the con- 

25 cert. The user does not have to wait in a queue at a ticket 
office and will not forget to buy the ticket. 

DESCRIPTION OF THE DRAWINGS 

30 [0033] The invention Is described in detail below with 
relerence to the following schematic drawings. 

FIG. 1 shows a schematic illustration of an applica- 
tion according to the present invention where 
35 a user wants to establish an authenticated 

session between his personal device and a 
remote serving device. 

FIG. 2 shows a more detailed schematic illustration 
40 of Fig. 1. 

[0034] All the figures are for the sake of clarity nol 
shown in real dimensions, nor are the relations between 
the dimensions shown in a realistic scale. 

4$ 

DETAILED DESCRIPTION OF THE INVENTION 

[0035] For the purpose of the present description the 
term networked pen^aslve computing environment is 

50 defined as an environment of both portable and fixed 
information devices that communicate through wireless 
networking technology. Communication between devic- 
es within such an environment is proximity based The 
startup-communication range of these devices is small. 

55 Thus, only when devices are in proximity can a session 
be initiated. Furthermore, establishment of communica- 
tion relationships is of an ad-hoc nature. That means 
communication on the physical layer can take place 
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whenever any iwo devices are in proximity. A user o( 
such device has a need lo conuol the flow of Information: 
in particular so where sensitive information, such as 
credit card details, authorizations, and so forth, are in- 
volved. A manifold problem is session control (or which 
a mechanism is described. 

[0036] In the context ol this invention, a local network 
is defined as being a network composed of at least two 
devices within mutual communication range of each oth- 
er. Within such a local network the devices communi- 
cate with each other without the need for a wired net- 
work. A local network does not need to have an access 
point lor connection to a fixed network. The local net- 
work may be cornplelely isolated from any other net- 
work, or it might comprise one or more access points 
which provide the (wireless) devices with access to the 
wired network. 

[0037] The specific range that constitutes a local net- 
work in accordance with the present invention depends 
on actual implementation details. Generally, a local net- 
work can be described as having a coverage area be- 
tween a few square meters and a few hundred square 
meters. Under certain circumstances the communica- 
tion range might even go beyond. 
[0038] The present networking scheme can be used 
in warehouses, on manufacturing floors, in offices, on 
trading floors, in private homes, in cars and trucks, in 
airplanes, and outside of buildings, just lo mention some 
examples. 

[0039] When referring to a device, any kind of device 
is meant that can be a member of a local network. Ex- 
amples ol devices are: laptop computers, workpads, 
nodepads. personal digital assistants (PDAs), notebook 
computers and other wearable computers, desktop 
computers, computer terminals, networked computers, 
internet terminals and other computing systems, set-top 
boxes, cash registers, barcode scanners, point of sales 
terminals, kiosk systems, cellular phones, pagers, wrist 
watches, digital watches, badges, smart cards, and oth- 
er hand-held and embedded devices. Other devices 
considered include: headsets, Human Interface Device 
(HID) compliant peripherals, data and voice access 
points, cameras, printers, fax machines, keyboards, joy- 
sticks, kitchen appliances, tools, sensors such as 
smoke and/or fire detectors, and virtually any other dig- 
ital device. 

[0040] Other examples of wearable computers that 
can be used in connection with the present invention 
are. personal effects being equipped with computer-like 
hardware, such as a "smart watlef computer, jewelry, 
or articles o( clothing. In addition lo a "smart wallet" com- 
puter, there are a number ol other variations ol the wear- 
able computers. A "belt" computer is such a variation 
which allows the user to surf, dictate, and edit docu- 
ments while they are moving around. Yet another exam- 
ple is a kids' computer which is comparable to a personal 
digital assistant for grade-school children. The kids' 
computer might hold assignments, perlorm calcula- 



tions, and help kids manage their homework. It can in- 
terface with other kids' computers to facilitate collabo- 
ration, and it can access a teacher's computer to down- 
load assignments or feedback. Any wearable or porta- 

5 ble device, any office tool or equipment, home tool or 
equipment, system for use in vehicles, or systems for 
use in the public (vending machines, ticketing ma- 
chines, automated teller machines, etc.) might be used 
in the context of the present invention. 

10 [0041] Network topology: The present scheme can 
be used in local networks with point-to-point and/or 
point-to-mulli-poinl connections. Several network seg- 
ments (groups) can be established and linked together 
ad-hoc. The network topology is lower-level than the 

»5 subject of the present invention. Aspects of the network 
topobgy are only addressed to the extent necessary. 
Note that the present invention is independent of the 
network topology and can be used on any kind of net- 
work topology allowing broadcast. 

20 [0042] Network technology; The present scheme 
can be used in connection with any kind of wireless com- 
munication technique, such as RF. IR, or other optical 
techniques, body networks (such as the PAN), and the 
like. 

25 [0043] In the following an exemplary implementation 
(first embodiment) of the present. scheme is described 
in connection which Figure i and 2. 
[0044] In Figure 1 a simple schematic Illustration 
shows a user 7 who wants to setup an authenticated 

30 session 8 for the exchange of information between a first 
device 1 that is situated in the user's hand and a second 
device 2 that is in the user's proximity. For that the user 
7 physically points with the first device l in the direction 
of the second device 2 in order to initiate a connection. 

35 The first device 1 sends a sequence 5 with encryption 
information via a unidirectional wireless communication 
channel 3 to the target device, the second device 2. It 
is advantageous if the unidirectional wireless communi- 
cation channel 3 is established as a directed line-of- 

40 sight link, e.g. as an infrared channel, which guarantees 
for security, because nobody else can listen in the link. 
The second device 2, which can be a printer or even a 
device of a further person, receives the sequence 5 that 
contains a password, key, communication parameter, or 

<5 identification parameter and uses the received informa- 
tion to setup the desired authenticated session 8 to the 
user's first device 1 . A wireless broadcast medium 4 is 
used for that purpose. 

(0045) Figure 2 refers to Figure 1 and shows a more 
so detailed arrangement. The first device 1 comprises an 
initial-transmitter. 10. a first transceiver 11, a first cryp- 
tosystem 15. All these units are connected to a first 
processing unit 16 that again is connected to further 
units but lor the sake of clarity, this is not depicted. The 
ss first transceiver 1 1 has a first broadcast-receiver 1 2 and 
a first broadcast-transmitter 1 3. The second device 2 on 
the other hand comprises an initial-receiver 20, a sec- 
ond transceiver 21, and a second cryplosystem 25. All 
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units ol the second device 2 are connecled lo a second 
processing unit 26 that again is connected to further 
units for data processing or even to a network but for 
the sake of clarity, this is not depicted. The second trans- 
ceiver 21 has a second broadcast-transmitter 22 and a 
second broadcast-receiver 23. Further, the second de- 
vice 2 shows a signal-device 30 which is here a LEO. 
This LED 30 is connected to the central processing unit 
26- The task of the two cryptosyslems 15. 25 is to en- 
crypt and decrypt information and therewith to cover and 
protect the exchanged information. 
[0046] To provide authenticity the present scheme 
employs a public-key scheme. That means a first parly 
creates a public key by using a private key and a cryp- 
tographic algorithm and sends this public key lo a sec- 
ond parly or makes the public key available lor other 
parties. Then, (or instance the second party can encrypt 
inlormation by using the received public key The en- 
crypted information is sent back via an insecure medium 
or channel, e.g. a wireless broadcast medium such as 
a radio-frequency (RF) channel. However, only the first 
parly is able to decrypt the information by using their 
private Key. 

[0047] The initial-scheme according to the present in- 
vention works as follows. The user 7, for the sake ol clar- 
ity not shown in Figure 2, sends from the first device l 
by using the initial-transmitter 10 the sequence 5 that 
comprises here an initialing token Tin// via unidirec- 
tional wireless communication channel 3. thai is here a 
directed tR channel, to the second device 2. The initiat- 
ing token 7}^,, contains a public key K^^^ of the first de- 
vice 1 and a randomly chosen noncOp. By transmitting 
the initiating token 7}„/, via the unidireclional wireless 
communication channel 3 only the intended second de- 
vice 2 can receive and respond to it. II the second device 
2 leceives the sequence 5 at the initial-receiver 20 and 
the second processing unit 26 is informed and delivered 
with the sequence 5, then the LED 30 is triggered by the 
first central processing unit 16 and signalizes the user 
7 that the second device 2 is ready and a communication 
session can start. The session is controlled by the user 
at all times, which further means that the user can siop 
ihe session immediately Normally, the second device 2 
responds to the received initiating token T^^by sending 
Irom the second broadcast-transmitter 22 a public-key 
token Tpy^as response 6 back to the first device 1 using 
the wireless broadcast medium 4 that is here a radio- 
frequency (RF). The public-key token Tp^^^thal Is creat- 
ed by the second crypiosysiem 25 contains the concate- 
nation ol the public key K^^^, o( the second device 2 and 
ihe received noncCpi the public-key token Tpy^, is en- 
crypted using the public key K^^^ of the first device l. 
that was received in the initiating token 7}^,;. Finally, the 
lirst device 1 receives the response 6 by the first-main 
receiver 1 2, processes this response 6 by using the first 
processing unit i6 and the first cryptosystem 15, and 
sends a communication sequence 9 thai comprises a 
communication -parameter token back by using the 



first broadcast-transmitter 13. This communication se- 
quence 9 is also transmitted over the wireless broadcast 
medium 4 and is received by the second broadcast-re- 
ceiver 23 of the second device 2. The communication- 
s parameter token T^^^ is encrypted with the received' 
public key K^^^ o( the second device 2. 
[0048] The exchanged token can be mathematically 
expressed as follows. 



Tpub = [K^put> II nonce 



put) 

20 [00491 The first cryptosystem 15 provides the initiat- 
ing token Tiy,;,and the communication-parameter token 
whereas the second cryptosystem 25 provides the 
public-key token Tpy^. 

[0050] Subsequent communication between the first 
25 device 1 and second device 2 takes place over the wire- ' 
less broadcast medium 4 by using the first transceiver 
1 1 and the second transceiver 2i . Thereby are used the 
communication parameters specified by the first device 
1. 

30 [0051] An authenticated session has been described 
in a first embodiment above. However, to exchange sen- 
sitive information, e.g. credit card information, authen- 
ticity alone is not sufficient. A secured, private commu- 
nication link' between the first device 1 and the second 

55 device 2 is required. Therefore a second embodiment 
is achieved by including in the communication-parame- 
ter token Tf^rn a cryptographic session key K^^^^ gen- 
erated by the first cryptosystem 15 of the first device i. 
Each subsequent communication between both devices 

40 is encrypted by using this session keyK^^^^. 

[0052] Another embodiment is addressed in relation 
to the first and second embodiment in the following. Typ- 
ically interactions between the first device l that is a per- 
sonal device and the second device 2 that is a sen/ing 

45 device lake place within a specific, limed context. In or- 
der lo prevent the serving device 2 from being able to 
re use the initiating token 7}^;,overandoveragain, a due- 
date rg' is a attached to the initiating token T,v,/^ Both 
are transmitted within the sequence 5. The personal de- 

50 vice 1 responds to the public-key token Tp^/j^onty if the 
due-dale attached to the initialing token T;y„7has not 
yet passed. Note that the due -date 7''^' is relative to the 
personal device 1 notion of time. 
[0053] Still another embodiment is a variation of the 

55 above described embodiments. Similar to thedue-daled 
initiating token 7^'. a due-date 7®^* is attached to the 
session key K^p^^ generated by the personal or first de- 
vice 1 and transmitted over the wireless broadcast me- 
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dium 4. The implemeniation of Ihe due-dale 7^^' gives 
tho responding device 2 a defined time-limit for the re- 
sponse. It the limit has passed, no transmission is re- 
quired and the session is stopped. This may help to save 
power ol portable devices and provide security. 
[0054] Passing the sequence 5 with the initiating to- 
ken T^y,,-; via the wireless communications channel 3 lo 
the serving devices 2 should be under the explicit control 
of the user 7. Depending on the technology used for the 
unidirectional wireless communication channel 3, this 
problem is addressed in different ways. Communication 
over the unidirectional wireless communication channel 
3, hereinafter short unidirectional channel 3. is disabled 
by default. When the unidirectional channel 3 is a optical 
link ol a laser pointer, the following two-phase procedure 
solves Ihe problem: (1) the user 7 pushes a first button 
lo activaie the laser and aims the laser in Ihe desired 
direction by visual control of Ihe spot ol the laser beam 
when it hits the surlace of the aimed object; (2) when 
the user 7 decides that the laser beam is on target, he/ 
she presses a second button to actually transmit tho se- 
quence 5 with the initiating token Tj^n to the target device 
2. When the unidirectional channel 3 is based on the 
PAN technology, ihe following two-phase procedure 
solves the problem: (1 ) the user 7 enables the unidirec- 
tional channel 3 by pressing a first button; once activat- 
ed, the unidirectional channel 3 stays activated for some 
limited time 57dufing which the user 7 has the oppor- 
tunity 10 transmit the sequence 5 over the directed chan- 
nel 3 by touching the'PAN-enabled surface; (2) the user 
7 louches the PAN-enabled surface to actually transmit 
the sequence 5 over the unidirectional channel. After 6 7 
has expired, communication over tho unidirectional 
channel 3 is immediately disabled, which prevents any 
further accidental information exchange. 
[0055] An extension of the activation procedure is the 
case where the user can profong 5Tby pressing the first 
button of the personal device repeatedly. 
[0056] In addition, Ihe personal device should provide 
a similar means for disabling the universal wireiess com- 
munication channel 3 immediately. 
[0057] Any disclosed embodiment may be combined 
with one or several of the other embodiments shown 
and/or described. This is also possible for one or more 
features of the embodiments. 



Claims 

1 . A method for providing an authenticated communi- 
cation session of a (irst device (l) with at least a 
remote second device (2). comprising the steps of: 

t initiating a unidirectional wireless communica- 
tion channel (3) between said first device (1) 
and said remote second device (2). 

• sending a sequence (5) via said unidirectional 



wireless communication channel (3) from said 
first device ( 1 ) to said remote second device (2) 
in order to furnish said remote second device 
(2) with encryption intormaiion, and 

5 

• sending an encrypted response (6) via a wire- 
less broadcast medium (4) to said first device 
(1), using said encryption information for en- 
cryption. 

JO 

2. The method of claim 1, wherein said two devices 
(1,2) share said wireless broadcast medium (4) and 
are pari of a local network. 

IS 3. The method oi claim 1. wherein said unidirectional 
wireless communication channel (3) is an optical 
channel, a Personal Area Network (PAN) channel, 
a directed radio-frequency channel, an inductive 
channel, or a capacitlve channel. 

20 

4. The method of claim 1 or 3, wherein said unidirec- 
tional wireless communication channel (3) is a di- 
rected channel. 

2S 5. The method of claim 4, wherein said directed unidi- 
rectional wireless communication channel (3) is a 
line-of-sight link. 

6. The method of claim 1 . wherein an inilia l-lransmitter 
50 ( 1 0) of said first device ( 1 ) is arranged such that said 

unidirectional wireless communication channel (3) 
is directed towards said second device (2). 

7. The method of claim 1 or 2, wherein said wireless 
35 broadcast medium (4) is an optical channel, an 

acoustic channel, a radio-frequency (RF) channel, 
a HomeRF channel, a Bluetooth channel, or a Per- 
sonal Area Network (PAN) channel. 

<»o 8. The method of claim 1 . wherein said unidtrociional 
wireless communication channel (3) has a reach of 
a few meters and a channet of said wireless broad- 
cast medium (4) has the same reach or a reach be- 
yond the reach of said unidirectional wireless com- 

4$ municaiion channel (3). 

9. The method of claim 1, wherein only said remote 
second device (2) receives said sequence (5). 

50 10. Tho method of claim 1, wherein said remote second 
device (2) signalizes the reception of said sequence 
(5) from said first device (1 ). preferably by an optical 
and/or acoustical signal. 

55 11 . The method of claim 1 , wherein said remote second 
device (2) listens periodically for said sequence (5). 

12. The method of claim l. wherein said first device (l) 
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is connected lo a user (7), and wherein said user 
(7) touches said remote second device (2) for initi- 
aling said unidirectional wireless communication 
channel (3) via the user's body. 

1 3. The method ol claim 1 . wherein one ol said two de- 
vices (1.2) sends at least a communication param- 
eter and/or a session key. 

14. The method of claim 1, wherein said response (6) 
over said wireless broadcast medium (5) is protect- 
ed by using a cryptosystem, preferably a public-key 

cryplosyslem. 

15. The method of claim 1 , wherein said encryption in- 
formation comprises a password and/or a public 
key 

16. An apparatus lor providing an authenticated com- 
munication session with at least one remote device 
(2), comprising 

• an initial-transmitter (10) for transmitting a se- 
quence (5) via a unidirectional wireless com- 
munication channel (3) to said remote device 
(2). 

• a receiver (12) lor receiving encrypted informa- 
tion from said remote device (2) via a wireless 
broadcast medium (4), and 

• a cryptographic system (15) providing encryp- 
tion inlormation which is transmitable over said 
unidirectional wireless communication (3) 
channel lo said remote device (2) and whereby 
said receiver (12) is able to receive over said 
wireless broadcast medium (4) encrypted inlor- 
mation which is processable by said crypto- 
graphic system (15). 

17. An apparatus lor providing an authenticated com- 
munication session with al least one device (i). 
comprising 

• an initial-receiver (20) for receiving a sequence 
(5) via a unidirectional wireless communication 
channel (3) Irom said device (1 ) in order to ob- 
tain encryption information. 

• a cryptographic system (25) for processing said 
encryption inlormation. and 

• a transmitter (22) for transmitting encrypted in- 
lormation to said device (1) over a wireless 
broadcast medium (4). 

1 8. A communication system for providing an authenti- 
cated communication session of a first device (1) 



with a second device (2), each having a crypto- 
graphic system (1 5. 25) for encoding and decoding 
of information, whereby 

5 • said first device (1) comprises an initial-trans- 
mitter (1 0) for sending a sequence (5) via a uni- 
directional wireless communication channel (3) 
to said second device (2) in order to furnish said 
second device (2) with encryption information. 

10 and a first transceiver (1 1 ) for encrypted com- 

munication between said first and second de- 
vice (1. 2) over a wireless broadcast medium 
(4), and 

'5 • said second device (2) comprises an initial-re- 
ceiver (20) for receiving said sequence (5) from 
said first device (1 ) via said unidirectional wire- 
less communication channel (3) in order to ob- 
tain said encryption inlormation. and a second 

20 transceiver (21) lor encrypted communication 

between said first and second device (1.2) over 
said wireless broadcast medium (4). 

19. The apparatus according to claim 16, further com- 
25 prising a transmitter (13) which is able to transmit 

encrypted information over said wireless broadcast 
medium (4). 

20. The apparatus according to claim 16, whereby said 
00 initial-transmitter (iO) transmits said sequence (5) 

via said unidirectional wireless communication 
channel (3) in a reach ol a lew meters. 

21. The apparatus according 10 claim 16 or 17, whereby 
35 said wireless broadcast medium (4) is an optical 

channel, an acoustic channel, a radio-lrequency 
(RF) channel, a HomeRF channel, a Bluetooth 
channel, or a Personal Area Network (PAN) chan- 
nel. 

40 

22. The apparatus according to claim i6or 17, whereby 
said wireless broadcast medium (4) has the same 
reach or a reach beyond the reach of said unidirec- 
tional wireless communication channel (3). 

45 

23. The apparatus according to claim 17. further com- 
prising a signal-device (30) for signalizing the re- 
ception ot said sequence (5), preferably by an opti- 
cal and/or acoustical device such as a LED and/or 

so a loudspeaker. 

24. The apparatus according to claim 1 7, whereby said 
initial-receiver (20) listens periodically for said se- 
quence (5). 

55 

25. The communication system according to claim 18. 
whereby one of said two devices (i. 2) is able to 
send a communication parameter and/or a session 
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key. 

26. The communication system according to claim 18, 
whereby said (wo devices (1,2) share said wireless 
broadcast medium (4) and are pan ol a local net- 5 
work. 

27. The communication system according to claim 18, 
whereby said initial-transmitter (10) of said lirst de- 
vice (1) is arrangabiG such that said unidirectional io 
wireless communication channel (3) is directed to- 
wards said second device (2). preferably by a line- 
ol-sighl linl<. 
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